Product : Fedora Core 3Name : mod_auth_pgsqlVersion : 2.0.1 Release : 6.2 Summary : Basic authentication for the Apache web server using a PostgreSQL database.Description :mod_auth_pgsql can be used to limit access to documents served by a web serverby checking fields in a table in a PostgresQL database.

Several format string flaws were found in the way mod_auth_pgsql logs information. It may be possible for aremote attacker to execute arbitrary code as the 'apache'user if mod_auth_pgsql is used for user authentication. TheCommon Vulnerabilities and Exposures project assigned thename CVE-2005-3656 to this issue.

Please note that this issue only affects servers which havemod_auth_pgsql installed and configured to perform userauthentication against a PostgreSQL database.